Spotlight in Apple OS X before 10.10.4 allows attackers to execute arbitrary commands via a crafted name of a photo file within the local photo library.
Base Score: 4.4
Impact Score: 6.4
Exploitability Score: 3.4
cpe:2.3:o:apple:mac_os_x:*:*:*:*:*:*:*:* versions up to 10.10.3 (inclusive)
View all (3 total)